Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

#23424 ejb30/sec TCK failures #23430

Merged
merged 1 commit into from
Mar 20, 2021
Merged

#23424 ejb30/sec TCK failures #23430

merged 1 commit into from
Mar 20, 2021

Conversation

hussainnm
Copy link
Member

@hussainnm hussainnm commented Mar 20, 2021
edited
Loading

Copy the OID to buffer excluding the name

Fixes #23424

Before fix, running the main method in GSSUtils.java throws : GSSException: Improperly formatted ASN.1 DER encoding for Oid

Returning OID in DER format
    OID = 2.23.130.1.1.1
    DER OID: 06 06 67 81 02 01 01 01
GSSUP_MECH_OID: 06 06 67 81 02 01 01 01
Returning OID in DER format
    OID = 1.3.6.1.5.6.4
    DER OID: 06 06 2b 06 01 05 06 04
GSS_NT_EXPORT_NAME_OID: 06 06 2b 06 01 05 06 04
Returning OID in DER format
    OID = 2.23.130.1.2.1
    DER OID: 06 06 67 81 02 01 02 01
GSS_NT_SCOPED_USERNAME_OID: 06 06 67 81 02 01 02 01
Returning OID in DER format
    OID = 2.23.130.1.1.1
    DER OID: 06 06 67 81 02 01 01 01
Length byte array : 82 01 d3
 Der length = 467
Returning OID in DER format
    OID = 2.23.130.1.1.1
    DER OID: 06 06 67 81 02 01 01 01
Attempting to import mechanism independent name
04 01 00 08 06 06 67 81 02 01 01 01 00 00 00 07
    64 65 66 61 75 6c 74
Mech OID length = 8
Mechanism specific name:
64 65 66 61 75 6c 74
Successfully imported mechanism independent name
BAR:default
Returning OID in DER format
    OID = 2.23.130.1.1.1
    DER OID: 06 06 67 81 02 01 01 01
Going to create a mechanism independent token
Mechanism independent token created:
60 24 06 06 67 81 02 01 01 01 64 75 6d 6d 79 5f
    67 73 73 5f 65 78 70 6f 72 74 5f 73 65 63 5f 63
    6f 6e 74 65 78 74
FOO:60 24 06 06 67 81 02 01 01 01 64 75 6d 6d 79 5f
    67 73 73 5f 65 78 70 6f 72 74 5f 73 65 63 5f 63
    6f 6e 74 65 78 74
Received mechanism independent token:
60 24 06 06 67 81 02 01 01 01 64 75 6d 6d 79 5f
    67 73 73 5f 65 78 70 6f 72 74 5f 73 65 63 5f 63
    6f 6e 74 65 78 74
Attempting to verify tokenheader in the mechanism independent token.
Mech OID length + Mech specific length = 36
Mechanism OID index : 2
iiop.IOexception
GSSException: Improperly formatted ASN.1 DER encoding for Oid
        at java.security.jgss/org.ietf.jgss.Oid.<init>(Oid.java:115)
        at com.sun.enterprise.iiop.security.GSSUtils.getOID(GSSUtils.java:279)
        at com.sun.enterprise.iiop.security.GSSUtils.verifyTokenHeader(GSSUtils.java:383)
        at com.sun.enterprise.iiop.security.GSSUtils.getMechToken(GSSUtils.java:334)
        at com.sun.enterprise.iiop.security.GSSUtils.main(GSSUtils.java:481)

iiop.name_exception
java.lang.NullPointerException
        at com.sun.enterprise.iiop.security.GSSUtils.dumpHex(GSSUtils.java:104)
        at com.sun.enterprise.iiop.security.GSSUtils.main(GSSUtils.java:483)

@hussainnm
eclipse-ee4j#23424 ejb30/sec TCK failures
82104e6 
Copy the OID to buffer excluding the name

Signed-off-by: hussainnm <hussain.nm@cognizant.com>
@glassfish-bot
Copy link
Contributor

Can one of the admins verify this patch?

@hussainnm
Copy link
Member Author

Running the main method in GSSUtils.java results in the below output

 Received mechanism independent token:
 60 24 06 06 67 81 02 01 01 01 64 75 6d 6d 79 5f
    67 73 73 5f 65 78 70 6f 72 74 5f 73 65 63 5f 63
    6f 6e 74 65 78 74
 Attempting to verify tokenheader in the mechanism independent token.
 Mech OID length + Mech specific length = 36
 Mechanism OID index : 2
 Comparing mech OID in token with the expected mech OID
 Returning OID in DER format
     OID = 2.23.130.1.1.1
     DER OID: 06 06 67 81 02 01 01 01
 mech OID: 06 06 67 81 02 01 01 01
 Returning OID in DER format
     OID = 2.23.130.1.1.1
     DER OID: 06 06 67 81 02 01 01 01
 expected mech OID: 06 06 67 81 02 01 01 01
 Returning OID in DER format
     OID = 2.23.130.1.1.1
     DER OID: 06 06 67 81 02 01 01 01
 Mechanism specific token index : 28
 Successfully verified header in the mechanism independent token.
 Mechanism specific token :
 64 75 6d 6d 79 5f 67 73 73 5f 65 78 70 6f 72 74
    5f 73 65 63 5f 63 6f 6e 74 65 78 74
 BAR:64 75 6d 6d 79 5f 67 73 73 5f 65 78 70 6f 72 74
    5f 73 65 63 5f 63 6f 6e 74 65 78 74
 BAR string: dummy_gss_export_sec_context

@arjantijms arjantijms merged commit 9d12f43 into eclipse-ee4j:master Mar 20, 2021
@hussainnm hussainnm deleted the fix-oid branch March 20, 2021 11:12
@scottmarlow
Copy link
Member

Thanks @hussainnm !

@scottmarlow
Copy link
Member

Thanks @arjantijms !

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@arjantijms arjantijms arjantijms approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

ejb30/sec TCK failures
4 participants
@hussainnm @glassfish-bot @scottmarlow @arjantijms